mirai | 31596f84761d52fcfd77ed4cbdcecb8582dbfbd5b3a8a01f75a0e8af30af9944 | Triage

Sharing

General

Target

31596f84761d52fcfd77ed4cbdcecb8582dbfbd5b3a8a01f75a0e8af30af9944.elf
Size

29KB
Sample

250312-ctme3avwhx
MD5

8c8f6b00edbf591872b4b76d12d27594
SHA1

68bf07ee8c25c58cd89bb046c51d9907bf3a60ea
SHA256

31596f84761d52fcfd77ed4cbdcecb8582dbfbd5b3a8a01f75a0e8af30af9944
SHA512

8ee5222c41ebb4632a994c147f9d715587279c11c6036504bcb55ba9e03e3de7fb4af2b0721a8d29e0d0b4d420bc0464ab149b7f52f061de9dedb4f1e16b248d
SSDEEP

768:xLLumerjum/NNEWTRO4ZZLphUh5mJxZD3v2lvoNS5CKFEjgTL9v:GjPHRVZR5JylvkSTSjE

Score

10^/10

mirai lzrd botnet defense_evasion linux upx

Malware Config

Extracted

Family

mirai

Botnet

LZRD

Targets

- Target
  
  31596f84761d52fcfd77ed4cbdcecb8582dbfbd5b3a8a01f75a0e8af30af9944.elf
- Size
  
  29KB
- MD5
  
  8c8f6b00edbf591872b4b76d12d27594
- SHA1
  
  68bf07ee8c25c58cd89bb046c51d9907bf3a60ea
- SHA256
  
  31596f84761d52fcfd77ed4cbdcecb8582dbfbd5b3a8a01f75a0e8af30af9944
- SHA512
  
  8ee5222c41ebb4632a994c147f9d715587279c11c6036504bcb55ba9e03e3de7fb4af2b0721a8d29e0d0b4d420bc0464ab149b7f52f061de9dedb4f1e16b248d
- SSDEEP
  
  768:xLLumerjum/NNEWTRO4ZZLphUh5mJxZD3v2lvoNS5CKFEjgTL9v:GjPHRVZR5JylvkSTSjE
Score

10^/10

mirai lzrd botnet defense_evasion
- Mirai
  Mirai is a prevalent Linux malware infecting exposed network devices.
  botnet mirai
- Mirai family
  mirai
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mirailzrdbotnetdefense_evasion